Throughout the blogosphere there’s been reports of an issue with ASP.NET that will bring a site to it’s knees – or so, it’s been overblown and reported as such. Microsoft has released an advisory here that discusses the matter. The workaround for now is something that any public website should’ve been doing anyway. That is, implement a custom error handling page and suppress revealing detailed errors. This is a normal part of a security audit and if you follow the STRIDE threat modeling you should ......

IE9 adds a nice feature - “Send Feedback” – which, helps you gather a report, even launches the “Problem Step Recorder” (PSR) tool that comes with Windows 7/2008R2 ***. The PSR tool is also usable outside of this feedback and is an optional capture that can be added to the feedback report. *** HOWTO: Problem Step Recorder ......

Good to see it’s sticking around and most importantly, they’ve increased the initial 2 GB limit to match what we had on Live Mesh – 5 GB. I’ve been loving this tool since it came out and becoming one of those things I can’t do without. http://windowsteamblog.com/... ......

Many times, especially during development, you could have certificates that are out of date, aren’t singed by any real authority (makecert, etc.), or even don’t match the host name that the request is issued against, but you want to test, etc. One example is if you want to run Fiddler to get a good over-the-wire trace of the HTTP traffic, when the endpoint is accessed over HTTPS. With Fiddler, you can capture HTTPS traffic, only thing is, it sticks it’s own certificate in the chain which doesn't ......